Home Explore Help
Register Sign In
huang_chao
/
EC600G
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 71afda5c85
Branches Tags
EC600G
/
components
/
net
/
mbedtls
/
programs
/
psa
/
key_ladder_demo.sh

key_ladder_demo.sh 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. #!/bin/sh
    2. 

  2. #
    3. 

  3. # Copyright The Mbed TLS Contributors
    4. 

  4. # SPDX-License-Identifier: Apache-2.0
    5. 

  5. #
    6. 

  6. # Licensed under the Apache License, Version 2.0 (the "License"); you may
    7. 

  7. # not use this file except in compliance with the License.
    8. 

  8. # You may obtain a copy of the License at
    9. 

  9. #
    10. 

  10. # http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11. #
    12. 

  12. # Unless required by applicable law or agreed to in writing, software
    13. 

  13. # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
    14. 

  14. # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15. # See the License for the specific language governing permissions and
    16. 

  16. # limitations under the License.
    17. 

  17. 

  18. set -e -u
    19. 

  19. 

  20. program="${0%/*}"/key_ladder_demo
    21. 

  21. files_to_clean=
    22. 

  22. 

  23. run () {
    24. 

  24.     echo
    25. 

  25.     echo "# $1"
    26. 

  26.     shift
    27. 

  27.     echo "+ $*"
    28. 

  28.     "$@"
    29. 

  29. }
    30. 

  30. 

  31. if [ -e master.key ]; then
    32. 

  32.     echo "# Reusing the existing master.key file."
    33. 

  33. else
    34. 

  34.     files_to_clean="$files_to_clean master.key"
    35. 

  35.     run "Generate a master key." \
    36. 

  36.         "$program" generate master=master.key
    37. 

  37. fi
    38. 

  38. 

  39. files_to_clean="$files_to_clean input.txt hello_world.wrap"
    40. 

  40. echo "Here is some input. See it wrapped." >input.txt
    41. 

  41. run "Derive a key and wrap some data with it." \
    42. 

  42.     "$program" wrap master=master.key label=hello label=world \
    43. 

  43.                input=input.txt output=hello_world.wrap
    44. 

  44. 

  45. files_to_clean="$files_to_clean hello_world.txt"
    46. 

  46. run "Derive the same key again and unwrap the data." \
    47. 

  47.     "$program" unwrap master=master.key label=hello label=world \
    48. 

  48.                input=hello_world.wrap output=hello_world.txt
    49. 

  49. run "Compare the unwrapped data with the original input." \
    50. 

  50.     cmp input.txt hello_world.txt
    51. 

  51. 

  52. files_to_clean="$files_to_clean hellow_orld.txt"
    53. 

  53. ! run "Derive a different key and attempt to unwrap the data. This must fail." \
    54. 

  54.   "$program" unwrap master=master.key input=hello_world.wrap output=hellow_orld.txt label=hellow label=orld
    55. 

  55. 

  56. files_to_clean="$files_to_clean hello.key"
    57. 

  57. run "Save the first step of the key ladder, then load it as a master key and construct the rest of the ladder." \
    58. 

  58.     "$program" save master=master.key label=hello \
    59. 

  59.                input=hello_world.wrap output=hello.key
    60. 

  60. run "Check that we get the same key by unwrapping data made by the other key." \
    61. 

  61.     "$program" unwrap master=hello.key label=world \
    62. 

  62.                input=hello_world.wrap output=hello_world.txt
    63. 

  63. 

  64. # Cleanup
    65. 

  65. rm -f $files_to_clean
    66.